CN105550591B - The safety device and method of user data of mobile terminal - Google Patents

The safety device and method of user data of mobile terminal Download PDF

Info

Publication number
CN105550591B
CN105550591B CN201510907230.0A CN201510907230A CN105550591B CN 105550591 B CN105550591 B CN 105550591B CN 201510907230 A CN201510907230 A CN 201510907230A CN 105550591 B CN105550591 B CN 105550591B
Authority
CN
China
Prior art keywords
mode
mobile terminal
security level
scene
wireless lan
Prior art date
Application number
CN201510907230.0A
Other languages
Chinese (zh)
Other versions
CN105550591A (en
Inventor
胡显响
李江平
Original Assignee
厦门美图移动科技有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 厦门美图移动科技有限公司 filed Critical 厦门美图移动科技有限公司
Priority to CN201510907230.0A priority Critical patent/CN105550591B/en
Publication of CN105550591A publication Critical patent/CN105550591A/en
Application granted granted Critical
Publication of CN105550591B publication Critical patent/CN105550591B/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • G06F21/6245Protecting personal data, e.g. for financial or medical purposes
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/71Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
    • G06F21/74Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information operating in dual or compartmented mode, i.e. at least one secure mode
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2111Location-sensitive, e.g. geographical location, GPS

Abstract

The invention discloses the safety device of user data of mobile terminal and correlation method, which is arranged in the terminal, including:Judgment module, suitable for judging whether mobile terminal accesses WLAN;Data obtaining module is identified suitable for obtaining the wireless lan network when mobile terminal accesses WLAN, and the location information of the mobile terminal is obtained when being not matched to corresponding scene mode according to wireless lan network mark;Database module, suitable for matching corresponding scene mode in security level list according to acquired wireless lan network mark or location information of mobile terminal;Management module is set, suitable for setting security level associated with the scene mode for mobile terminal when being matched to corresponding scene mode according to wireless lan network mark or location information;And safe mode management module, it is adapted for carrying out the data safety or privacy protection mode that security level described in security level list defines.

Description

The safety device and method of user data of mobile terminal

Technical field

The present invention relates to the safety device of technical field of the computer network, especially user data of mobile terminal and Safety protecting method.

Background technique

With the rapid development of mobile communication, mobile terminal is both means of communication and provides banking and insurance business wealth for user A variety of application services such as business, information interchange storage, therefore the information such as a large amount of personal finance, privacy are stored in mobile terminal, Just to mobile data safety prevention ability, more stringent requirements are proposed for this.Currently, mobile terminal generally pass through setting startup password, Login password is set to important application system or the protected mode of the passwords screen lockings such as password is accessed to important data setting to realize Safeguard protection to personal information or secret.Although the modes such as password screen locking effectively, are brought not to user in many cases Necessary trouble.

Therefore, it is necessary to a kind of more intelligent, convenient and fast security strategies to improve and use to protect the information security of mobile terminal Family experience.

Summary of the invention

For this purpose, the present invention provides the safety device and safety protecting method of user data of mobile terminal, to try hard to Solve the problems, such as or at least alleviate above it is existing at least one.

According to an aspect of the invention, there is provided the safety device of user data of mobile terminal, device are arranged in In mobile terminal, including:Judgment module, suitable for judging whether mobile terminal accesses WLAN;Data obtaining module is suitable for Wireless lan network mark is obtained when mobile terminal accesses WLAN, and according to wireless lan network mark Know the location information that the mobile terminal is obtained when being not matched to corresponding scene mode;Database module is suitable for according to acquired in Wireless lan network mark or location information of mobile terminal match in security level list correspondence scene mode;Setting pipe Manage module, suitable for according to wireless lan network mark or location information be matched to corresponding scene mode when, by mobile terminal It is set as security level associated with the scene mode;And safe mode management module, it is adapted for carrying out security level list Described in the security level data safety or privacy protection mode that define.

Optionally, in a device in accordance with the invention, data obtaining module is further adapted for not accessing wireless office in mobile terminal Domain obtains location information when netting.

Optionally, in a device in accordance with the invention, data obtaining module is further adapted for according to wireless lan network mark When knowledge and location information are not matched to corresponding scene mode, the environmental information of the mobile terminal is obtained;Database module is also Suitable for corresponding scene mode is matched in security level list according to the environmental information;Setting management module is further adapted in basis When the environmental information is matched to corresponding scene mode, safety associated with the scene mode etc. is set by mobile terminal Grade.

Optionally, in a device in accordance with the invention, database module be further adapted for identified according to wireless lan network, When location information and environmental information are not matched to corresponding scene mode, WLAN net is recorded in security level list Network mark, location information and environmental information, to be customized by the user corresponding scene mode.

Optionally, in a device in accordance with the invention, setting management module be further adapted for according in predetermined amount of time to wireless The statistical data of local net network mark and/or location information and/or environmental information obtains corresponding scene mode.

Optionally, in a device in accordance with the invention, data safety or secret protection that safe mode management module defines Mode includes at least one of latching mode, desktop management mode and Validation Mode.

Optionally, in a device in accordance with the invention, database module is further adapted for storing in security level list in advance Setting to wireless lan network mark, location information, environmental information, scene mode, security level.

Optionally, in a device in accordance with the invention, scene mode includes home mode, office mode, public place mould Formula;And database module is further adapted for being associated with home mode and high safety grade, what wherein high safety grade defined is to exempt to unlock Latching mode, laissezpasser Validation Mode;Database module is further adapted for being associated with office mode and middle security level, wherein middle peace The latching mode of full tier definition is that password unlocks, Validation Mode is password authentification;Database module is further adapted for being associated with public field Institute's mode and lower security grade, wherein the latching mode of lower security tier definition is that password combination unlocks, Validation Mode is secondary Verifying, desktop management mode are that hidden parts icon is shown.

Optionally, in a device in accordance with the invention, location information includes GPS position information and base station position information.

According to another aspect of the present invention, the safety protecting method of user data of mobile terminal is provided, method is in movement It is executed in terminal, including step:Judge whether mobile terminal accesses WLAN;If accessing WLAN, obtain Wireless lan network mark;Corresponding scene mode is matched in security level list according to wireless lan network mark; If being matched to corresponding scene mode according to wireless lan network mark, set related to the scene mode for mobile terminal The security level of connection;If not being matched to corresponding scene mode according to wireless lan network mark, the mobile terminal is obtained Location information;Corresponding scene mode is matched in security level list according to location information;If being matched to according to location information Corresponding scene mode, then set security level associated with the scene mode for mobile terminal;And execute security level The data safety or privacy protection mode that security level defines in list.

It optionally, in the method according to the invention, further include step:If mobile terminal does not access wireless network, obtain The location information for taking the mobile terminal matches corresponding scene mould according to the location information of the mobile terminal in security level list Formula.

It optionally, in the method according to the invention, further include step:If according to wireless lan network mark and position Information is not matched to corresponding scene mode, then obtains the environmental information of the mobile terminal;According to environmental information in safety level Corresponding scene mode is matched in other list;If being matched to corresponding scene mode according to environmental information, set mobile terminal to Security level associated with the scene mode.

It optionally, in the method according to the invention, further include step:If according to wireless lan network mark, position Information and environmental information are not matched to corresponding scene mode, then wireless lan network mark is recorded in security level list Know, location information and environmental information are to be customized by the user corresponding scene mode.

It optionally, in the method according to the invention, further include step:According in predetermined amount of time to WLAN net The statistical data of network mark and/or location information and/or environmental information obtains corresponding scene mode.

Optionally, in the method according to the invention, data safety or privacy protection mode include latching mode, desktop pipe At least one of reason mode and Validation Mode.

It optionally, in the method according to the invention, further include step:It stores in security level list to wireless in advance The setting of local net network mark, location information, environmental information, scene mode, security level.

Optionally, in the method according to the invention, scene mode includes home mode, office mode, public place mould Formula;And associated with home mode is high safety grade, what high safety grade defined is the latching mode for exempting from unlock, laissezpasser Validation Mode;Associated with office mode is middle security level, and the latching mode that middle security level defines is password unlock, tests Card mode is password authentification;It is lower security grade with public place pattern association, the latching mode of lower security tier definition is Password combination unlock, Validation Mode be it is secondary verifying, desktop management mode be that hidden parts icon is shown.

Optionally, in the method according to the invention, location information includes GPS position information and base station position information.

According to another aspect of the present invention, a kind of mobile terminal is provided, there is mobile terminal privacy number as described above According to safety device.

The security protection scheme of user data of mobile terminal according to the present invention can currently be connect by obtaining mobile terminal The wireless lan network mark that enters, locating geographical location or environmental information etc. distinguish the scene mode of mobile terminal, example Such as family, public place, office ... and different scene modes is set with different security levels, mobile terminal can root Data safety or privacy protection mode under corresponding security level are automatically switched to according to the scene mode being calculated, for example is being pacified Congruent grade can not have to password screen locking when high, and in the case where security level is low, user will carry out the sensitive operation such as paying When, it be using the form of combination pin and secondary verifying etc..On the one hand the information of customer mobile terminal can be protected to pacify Entirely, while again it not will increase user's operation difficulty, improve user experience.

Detailed description of the invention

To the accomplishment of the foregoing and related purposes, certain illustrative sides are described herein in conjunction with following description and drawings Face, these aspects indicate the various modes that can practice principles disclosed herein, and all aspects and its equivalent aspect It is intended to fall in the range of theme claimed.Read following detailed description in conjunction with the accompanying drawings, the disclosure it is above-mentioned And other purposes, feature and advantage will be apparent.Throughout the disclosure, identical appended drawing reference generally refers to identical Component or element.

Fig. 1 shows the construction block diagram of the mobile terminal 100 of an illustrative embodiments according to the present invention;

Fig. 2 shows showing for the safety device 200 of user data of mobile terminal according to an embodiment of the invention It is intended to;And

Fig. 3 shows the stream of the safety protecting method 300 of user data of mobile terminal according to an embodiment of the invention Cheng Tu.

Specific embodiment

Exemplary embodiments of the present disclosure are described in more detail below with reference to accompanying drawings.Although showing the disclosure in attached drawing Exemplary embodiment, it being understood, however, that may be realized in various forms the disclosure without should be by embodiments set forth here It is limited.On the contrary, these embodiments are provided to facilitate a more thoroughly understanding of the present invention, and can be by the scope of the present disclosure It is fully disclosed to those skilled in the art.

Fig. 1 is 100 organigram of mobile terminal according to an embodiment of the invention.Referring to Fig.1, mobile terminal 100 include:Memory interface 102, one or more data processors, image processor and/or central processing unit 104, with And peripheral interface 106.Memory interface 102, one or more processors 104 and/or peripheral interface 106 are either discrete member Part also can integrate in one or more integrated circuits.In the mobile terminal 100, various elements can pass through one or more Communication bus or signal wire couple.Sensor, equipment and subsystem may be coupled to peripheral interface 106, to help reality Existing multiple functions.For example, motion sensor 110, optical sensor 112 and range sensor 114 may be coupled to peripheral interface 106, to facilitate the functions such as orientation, illumination and ranging.Other sensors 116 can equally be connected with peripheral interface 106, such as fixed Position system (such as GPS receiver), temperature sensor, biometric sensor or other sensor devices, it is possible thereby to help reality Apply relevant function.

Camera sub-system 120 and optical sensor 122 can be used for the camera of convenient such as record photos and video clips The realization of function, wherein the camera sub-system and optical sensor for example can be charge-coupled device (CCD) or complementary gold Belong to oxide semiconductor (CMOS) optical sensor.It can help to realize by one or more radio communication subsystems 124 Communication function, wherein radio communication subsystem may include radio-frequency transmitter and transmitter and/or light (such as infrared) receiver And transmitter.The particular design and embodiment of radio communication subsystem 124 can depend on mobile terminal 100 is supported one A or multiple communication networks.For example, mobile terminal 100 may include being designed to support GSM network, GPRS network, EDGE net The communication subsystem 124 of network, Wi-Fi or WiMax network and BlueboothTM network.Audio subsystem 126 can be with loudspeaking Device 128 and microphone 130 are coupled, to help the function of implementing to enable voice, such as speech recognition, speech reproduction, number Word record and telephony feature.

I/O subsystem 140 may include touch screen controller 142 and/or other one or more input controllers 144. Touch screen controller 142 may be coupled to touch screen 146.For example, the touch screen 146 and touch screen controller 142 can be with The contact carried out therewith and movement or pause are detected using any one of a variety of touch-sensing technologies, wherein sensing skill Art includes but is not limited to capacitive character, resistive, infrared and surface acoustic wave technique.Other one or more input controllers 144 May be coupled to other input/control devicess 148, for example, one or more buttons, rocker switch, thumb wheel, infrared port, The pointer device of USB port, and/or stylus etc.One or more of button (not shown)s may include for controlling The up/down button of 130 volume of loudspeaker 128 and/or microphone.

Memory interface 102 can be coupled with memory 150.The memory 150 may include that high random access is deposited Reservoir and/or nonvolatile memory, such as one or more disk storage equipments, one or more optical storage apparatus, and/ Or flash memories (such as NAND, NOR).Memory 150 can store an operating system 152, for example, Android, IOS or The operating system of Windows Phone etc.The operating system 152 may include for handling basic system services and execution The instruction of task dependent on hardware.Memory 150 can also be stored using 154.These applications in operation, can be from memory 150 are loaded on processor 104, and run on the operating system run via processor 104, and utilize operating system And the interface that bottom hardware provides realizes the various desired functions of user, such as instant messaging, web page browsing, pictures management. Using can be independently of operating system offer, it is also possible to what operating system carried.

According to one embodiment of present invention, a kind of mobile terminal 100 with user data safeguard function is provided, it can To realize above-mentioned function by arranging corresponding secure user data protective device 200 in the mobile terminal 100.

Fig. 2 shows showing for the safety device 200 of user data of mobile terminal according to an embodiment of the invention It is intended to.The device 200 includes:Judgment module 210, data obtaining module 220, database module 230, setting management module 240, And safe mode management module 250.

Judgment module 210 is suitable for judging whether mobile terminal 100 accesses WLAN.If the mobile terminal 100 accesses To WLAN, then data obtaining module 220 coupled thereto is sent instructions to.

Data obtaining module 220 is suitable for obtaining the wireless lan network when mobile terminal 100 accesses WLAN Mark, i.e. WiFi SSID.According to one embodiment of present invention, data obtaining module 220 is further adapted for according to WLAN Network identity obtains the location information of the mobile terminal 100 when being not matched to corresponding scene mode.What then be will acquire is described Information is sent to database module 230 coupled thereto.

Wherein, location information includes GPS position information and base station position information.

According to another embodiment of the present invention, data obtaining module 220 is further adapted for not accessing wireless office in mobile terminal 100 Domain obtains location information when netting.

Data obtaining module 220 described below obtains the code of SSID and GPS position information, base station position information:

1. obtaining WiFi SSID

The permission needed:

2. obtaining current location by GPS

The permission needed:

In the examples described above, according to specified distance or time interval, LocationListener will receive update notification. After having notice, so that it may judge change in location and match corresponding scene mode by database module 230.

3. obtaining base station information:

According to still another embodiment of the invention, data obtaining module 220 is further adapted for identifying according to wireless lan network When being not matched to corresponding scene mode with location information, the environmental information of the mobile terminal 100, such as local environment are obtained Outside noise value.Under normal circumstances, when mobile terminal 100 is in public place (such as on bus, some outdoor location Deng), the outside noise value of local environment can be higher than the noise figure in family or office space.

Database module 230 is suitable for according to acquired wireless lan network mark above-mentioned, location information, ring Border information etc. matches corresponding scene mode in security level list.Specifically, safety level is stored in database module 230 Other list pre-recorded can set wireless lan network mark, location information, environmental information, scene mode, security level It sets.According to a kind of implementation, scene mode includes home mode, office mode and public place mode.Every kind is recorded respectively The data such as corresponding wireless lan network mark, location information, environmental information under scene mode, while by scene mode and pacifying Full rank is associated, such as security level is divided into high safety grade, middle security level, lower security grade three-level, respectively with family Front yard mode, office mode, public place mode correspond.

According to one embodiment of present invention, database module 230 be further adapted for identified according to wireless lan network, position When confidence breath and environmental information are not matched to corresponding scene mode, the WLAN net is recorded in security level list Network mark, location information and environmental information, to be customized by the user corresponding scene mode.

When database module 230 is matched to corresponding scene mode, setting management module coupled thereto is sent messages to 240.Setting management module 240 is suitable for when being matched to corresponding scene mode according to wireless lan network mark, will be mobile whole End 100 is set as security level associated with the scene mode (that is, high safety grade, middle security level, lower security grade).

According to a kind of implementation, be arranged management module 240 be further adapted for according in predetermined amount of time to WLAN net The statistical data of network mark and/or location information and/or environmental information obtains corresponding scene mode.

By taking GPS position information as an example, location information of the mobile terminal 100 in one week is obtained by GPS positioning, statistics exists The situation of change of location information in this week generally on Monday (is considered the upper of normal working from 9am to 5pm to the daytime of Friday In class's time), if GPS position information is held essentially constant, it is judged that the corresponding scene mode of this GPS position information is to do Male model formula.

Alternatively, statistics obtains whithin a period of time, and from evening to second day daytime, the WiFi that mobile terminal 100 is accessed SSID holding is basically unchanged, and being considered as this corresponding scene mode of WiFi SSID is home mode.

For another example, it is contemplated that the location information variation of mobile terminal 100 is bigger on the vehicles such as motor-car, or strolls WIFI SSID and base station signal can also change when street, naturally it is also possible to along with the noise figure and clock synchronization for obtaining the external world Between section the considerations of, determine that scene mode at this time is public place mode.

Based on foregoing description, corresponding statistical result is stored in advance, in security level list in order in acquisition of information It is quick according to the information when module 220 gets wireless lan network mark and/or location information and/or environmental information It determines corresponding scene mode, and then switches mobile terminal 100 and arrive and the associated security level of scene mode.

Safe mode management module 250 is adapted for carrying out the data safety that the security level defines in security level list or hidden Private protected mode.According to one embodiment of present invention, the data safety or privacy protection mode of definition include latching mode, table At least one of face management mode and Validation Mode.The example of several data safeties or privacy protection mode is given below.

For example, defining latching mode is suitable for unlocking screen, may include:It is close to exempt from unlock, password unlock, number and pattern Code character closes the mode of unlock.When using mobile terminal 100 in the home mode with high safety grade, user can not have to solution Lock;Under the office mode with middle security level, user can be in such a way that general password be unlocked come using mobile terminal 100, password unlock herein can be numerical ciphers, is also possible to pattern password, depends on the setting of user;It is low in security level Public place mode when, by the way of the unlock of number+pattern password combination, effectively to ensure the information of mobile terminal 100 Safety.

It defines Validation Mode and is suitable for mobile terminal 100 when carrying out certain sensitive operations, such as payment verification, login are tested Card, may include:Laissezpasser, password authentification, secondary verifying mode, wherein secondary verifying again can be using password authentification+refer to Line (face, vocal print, gesture) is known otherwise.Equally, the high home mode of security level can by the way of laissezpasser, Office mode in security level can by the way of password authentification, and in the low public place mode of security level, By the way of secondary verifying.With the safety of branch scape protection user data.

The protection that desktop management mode is mainly used for some private datas is defined, such as in lower security grade, Ke Yixuan Select the display of desktop management mode hidden parts sensitivity icon or data;Or in office mode, some joys are hidden in selection The icon of happy class.With the privacy of user of branch scape protection mobile terminal 100.Again alternatively, user also can use desktop management mould The wallpaper of formula branch scape replacement mobile terminal 100 shows that selection shows specific wallpaper in specific scene mode, according to one Kind of implementation, by setBitmap () or setResource () in WallpaperManager method or can also be with The replacement of desktop wallpaper is realized by the setWallpaper () method provided in ContextWrapper class.

In addition to this, it also can according to need setting using latching mode, certain applications added according to the difference of security level Add application lock, such as when mobile terminal is in lower security grade, setting, which needs to unlock, can open certain applications (for example, branch Pay software).

The present invention is not limited thereto the setting of data safety or privacy protection mode, can be needed that phase is arranged according to user The protected mode answered.

In conclusion the security protection scheme of user data of mobile terminal according to the present invention, can be moved by obtaining Wireless lan network mark (i.e. WiFi SSID), locating geographical location or environmental information that terminal 100 is currently accessed etc. are come It distinguishes the scene mode of mobile terminal 100, such as family, public place, office ... and different scene modes is set has Different security levels, mobile terminal 100 can automatically switch under corresponding security level according to the scene mode being calculated Data safety or privacy protection mode, such as when security level is high can not have to password screen locking, it is low in security level In the case where, it, be using the form of combination pin and secondary verifying etc. when user will carry out the sensitive operation such as paying.One Aspect can protect the information security of customer mobile terminal, on the other hand not will increase user's operation difficulty again, in security level Gao Shi reduces the operation of user to the greatest extent, improves user experience.

Fig. 3 shows the stream of the safety protecting method 300 of user data of mobile terminal according to an embodiment of the invention Cheng Tu.This method starts from step S310, first judges whether mobile terminal 100 accesses WLAN.

Then in step s 320, if access WLAN, wireless lan network mark, i.e. WiFi are obtained SSID。

Then in step S330, corresponding scene mould is matched in security level list according to wireless lan network mark Formula.A kind of embodiment according to the present invention, scene mode include home mode, office mode, public place mode.

Then in step S340, if being matched to corresponding scene mode according to wireless lan network mark, it will move Terminal 100 is set as security level associated with the scene mode.Wherein, security level is divided into high safety grade, middle safety Three kinds of grade, lower security grade.

Then in step S350, if not being matched to corresponding scene mode according to wireless lan network mark, obtain The location information of the mobile terminal 100 is taken, here, location information includes GPS position information and base station position information.According to this hair Bright one embodiment, if mobile terminal 100 does not access wireless network, then the mobile terminal 100 can also be directly acquired Location information.

Acquisition modes about wireless lan network mark, GPS position information and base station position information are based on Fig. 2's By the agency of in description, details are not described herein again.

Then in step S360, corresponding scene mode is matched in security level list according to above-mentioned location information, this Place uses mode same with step S330, that is to say, that stores in security level list to wireless lan network in advance The setting of mark, location information (further including the environmental information being subsequently noted), scene mode, security level, in order to which the later period looks into It askes.

Also, a kind of embodiment according to the present invention, mobile terminal 100 can according in predetermined amount of time to wireless office The statistical data of domain net network identity and/or location information and/or environmental information obtains corresponding scene mode.Specific statistics Example above crossed by by the agency of, and details are not described herein again.

Then in step S370, if being matched to corresponding scene mode according to location information, mobile terminal 100 is arranged For security level associated with the scene mode.

If in addition, being not matched to corresponding scene mould according to above-mentioned wireless lan network mark and location information Formula then obtains the environmental information of the mobile terminal;Corresponding scene mode is matched in security level list according to environmental information;If It is matched to corresponding scene mode according to environmental information, then sets safety associated with the scene mode for mobile terminal 100 Grade.

As described above, be stored in advance in the security level list of mobile terminal 100 about wireless lan network mark, The record of location information etc. and scene mode, security level, therefore when according to wireless lan network mark, location information and ring Border information is not matched to corresponding scene mode, then recorded in the security level list wireless lan network mark, Location information and environmental information are customized by the user corresponding scene mode.

Then in step S380, the data safety or secret protection that the security level defines in security level list are executed Mode.Wherein data safety or privacy protection mode include at least one in latching mode, desktop management mode and Validation Mode Kind.

According to one embodiment of present invention, it can preset:Associated with home mode is high safety grade, Gao An Full tier definition is the latching mode for exempting from unlock, the Validation Mode of laissezpasser;Associated with office mode is middle security level, The latching mode that middle security level defines is that password unlocks, Validation Mode is password authentification;It is with public place pattern association Lower security grade, the latching mode of lower security tier definition are that password combination unlocks, Validation Mode is secondary verifying, desktop management Mode is that hidden parts icon is shown.It should be noted that the present embodiment is merely given as a kind of association scene mode, security level With the example of data safety or privacy protection mode, it is not limited to the plan of establishment above-mentioned.It should be appreciated that in order to simplify The disclosure simultaneously helps to understand one or more of the various inventive aspects, above to the description of exemplary embodiment of the present invention In, each feature of the invention is grouped together into a single embodiment, figure, or description thereof sometimes.However, not answering The method of the disclosure is construed to reflect following intention:I.e. the claimed invention is required than institute in each claim The feature more features being expressly recited.More precisely, as reflected in the following claims, inventive aspect is Less than all features of single embodiment disclosed above.Therefore, it then follows claims of specific embodiment are thus clear Ground is incorporated to the specific embodiment, wherein each, the claims themselves are regarded as separate embodiments of the invention.

Those skilled in the art should understand that the module of the equipment in example disclosed herein or unit or groups Part can be arranged in equipment as depicted in this embodiment, or alternatively can be positioned at and the equipment in the example In different one or more equipment.Module in aforementioned exemplary can be combined into a module or furthermore be segmented into multiple Submodule.

Those skilled in the art will understand that can be carried out adaptively to the module in the equipment in embodiment Change and they are arranged in one or more devices different from this embodiment.It can be the module or list in embodiment Member or component are combined into a module or unit or component, and furthermore they can be divided into multiple submodule or subelement or Sub-component.Other than such feature and/or at least some of process or unit exclude each other, it can use any Combination is to all features disclosed in this specification (including adjoint claim, abstract and attached drawing) and so disclosed All process or units of what method or apparatus are combined.Unless expressly stated otherwise, this specification is (including adjoint power Benefit require, abstract and attached drawing) disclosed in each feature can carry out generation with an alternative feature that provides the same, equivalent, or similar purpose It replaces.

A6, the device as described in any one of A1-5, wherein the data safety or privacy that safe mode management module defines Protected mode includes at least one of latching mode, desktop management mode and Validation Mode.A7, the device as described in A6, In, database module is further adapted for storing in security level list to wireless lan network mark, location information, environment in advance The setting of information, scene mode, security level.A8, the device as described in A7, wherein scene mode includes home mode, office Mode, public place mode;And database module is further adapted for being associated with home mode and high safety grade, wherein high safety grade Definition is the latching mode for exempting from unlock, the Validation Mode of laissezpasser;Database module is further adapted for being associated with office mode and middle peace Congruent grade, wherein the latching mode that middle security level defines is that password unlocks, Validation Mode is password authentification;Database module is also Suitable for association public place mode and lower security grade, wherein the latching mode of lower security tier definition be password combination unlock, Validation Mode be it is secondary verifying, desktop management mode be that hidden parts icon is shown.A9, the dress as described in any one of A1-8 It sets, wherein location information includes GPS position information and base station position information.

B14, the method as described in any one of B10-13, further include step:According in predetermined amount of time to wireless local area The statistical data of net network identity and/or location information and/or environmental information obtains corresponding scene mode.B15, such as B10-14 Any one of described in method, wherein data safety or privacy protection mode include latching mode, desktop management mode and verifying At least one of mode.B16, the method as described in B15, further include step:It stores in security level list to nothing in advance The setting of line local net network mark, location information, environmental information, scene mode, security level.B17, the side as described in B16 Method, wherein scene mode includes home mode, office mode, public place mode;And associated with home mode is Gao An Congruent grade, what high safety grade defined is the latching mode for exempting from unlock, the Validation Mode of laissezpasser;It is associated with office mode to be Middle security level, the latching mode that middle security level defines are that password unlocks, Validation Mode is password authentification;With public place mould Associated formula is lower security grade, and the latching mode of lower security tier definition is that password combination unlocks, Validation Mode is secondary tests Card, desktop management mode are that hidden parts icon is shown.B18, the method as described in any one of B10-17, wherein position letter Breath includes GPS position information and base station position information.

In addition, it will be appreciated by those of skill in the art that although some embodiments described herein include other embodiments In included certain features rather than other feature, but the combination of the feature of different embodiments mean it is of the invention Within the scope of and form different embodiments.For example, in the following claims, embodiment claimed is appointed Meaning one of can in any combination mode come using.

In addition, be described as herein can be by the processor of computer system or by executing by some in the embodiment The combination of method or method element that other devices of the function are implemented.Therefore, have for implementing the method or method The processor of the necessary instruction of element forms the device for implementing this method or method element.In addition, Installation practice Element described in this is the example of following device:The device be used for implement as in order to implement the purpose of the invention element performed by Function.

As used in this, unless specifically stated, come using ordinal number " first ", " second ", " third " etc. Description plain objects, which are merely representative of, is related to the different instances of similar object, and is not intended to imply that the object being described in this way must Must have the time it is upper, spatially, sequence aspect or given sequence in any other manner.

Although the embodiment according to limited quantity describes the present invention, above description, the art are benefited from It is interior it is clear for the skilled person that in the scope of the present invention thus described, it can be envisaged that other embodiments.Additionally, it should be noted that Language used in this specification primarily to readable and introduction purpose and select, rather than in order to explain or limit Determine subject of the present invention and selects.Therefore, without departing from the scope and spirit of the appended claims, for this Many modifications and changes are obvious for the those of ordinary skill of technical field.For the scope of the present invention, to this Invent done disclosure be it is illustrative and not restrictive, it is intended that the scope of the present invention be defined by the claims appended hereto.

Claims (15)

1. the safety device of user data of mobile terminal, described device is arranged in the terminal, including:
Judgment module, suitable for judging whether the mobile terminal accesses WLAN;
Data obtaining module is identified suitable for obtaining the wireless lan network when mobile terminal accesses WLAN, and The location information of the mobile terminal is obtained when being not matched to corresponding scene mode according to wireless lan network mark, Wherein the data obtaining module is further adapted for judging the change in location of mobile terminal according to specified distance or time interval, with Just corresponding scene mode is matched by database module, and is further adapted for not having according to wireless lan network mark and location information When being matched to corresponding scene mode, the environmental information of the mobile terminal is obtained, the environmental information includes the outer of local environment Boundary's noise figure;
Database module, suitable for according to acquired wireless lan network mark or location information of mobile terminal in security level Corresponding scene mode is matched in list, is further adapted for matching corresponding scene mould in security level list according to the environmental information Formula;
Be arranged management module, suitable for according to wireless lan network mark or location information be matched to corresponding scene mode when, Security level associated with the scene mode is set by mobile terminal, is further adapted for being matched to pair according to the environmental information When answering scene mode, security level associated with the scene mode is set by mobile terminal;And
Safe mode management module is adapted for carrying out data safety or privacy guarantor that security level described in security level list defines Shield mode, wherein the data safety or privacy protection mode include:
Latching mode, the latching mode are suitable for unlocking screen, including exempt from unlock, password unlock, number and pattern password combination Unlock,
Validation Mode, the Validation Mode are suitable for carrying out safety verification, including laissezpasser, password authentification when executing sensitive operation With secondary verifying,
Desktop management mode, the desktop management mode are adapted for the protection of private data, including
Judge security level for it is low when, the display of hidden parts sensitivity icon or data.
2. device as described in claim 1, wherein
Data obtaining module is further adapted for obtaining location information when mobile terminal does not access WLAN.
3. device as claimed in claim 2, wherein
The database module be further adapted for identified according to wireless lan network, location information and environmental information do not match Believe to the wireless lan network mark, location information and environment when corresponding to scene mode, is recorded in security level list Breath, to be customized by the user corresponding scene mode.
4. device as claimed in claim 3, wherein
The setting management module be further adapted for according in predetermined amount of time to wireless lan network mark and/or location information And/or the statistical data of environmental information obtains corresponding scene mode.
5. device as claimed in claim 4, wherein
The database module, which is further adapted for storing in security level list in advance, believes wireless lan network mark, position The setting of breath, environmental information, scene mode, security level.
6. device as claimed in claim 5, wherein the scene mode includes home mode, office mode, public place mould Formula;And
The database module is further adapted for being associated with the home mode and high safety grade, and what wherein high safety grade defined is to exempt from The Validation Mode of the latching mode of unlock, laissezpasser;
The database module is further adapted for being associated with the office mode and middle security level, wherein the unlock that middle security level defines Mode is that password unlocks, Validation Mode is password authentification;
The database module is further adapted for being associated with the public place mode and lower security grade, wherein lower security tier definition Latching mode be password combination unlock, Validation Mode be it is secondary verifying, desktop management mode be that hidden parts icon is shown.
7. such as device of any of claims 1-6, wherein the location information includes GPS position information and base station position Confidence breath.
8. the safety protecting method of user data of mobile terminal, the method execute in the terminal, including step:
Judge whether the mobile terminal accesses WLAN;
If accessing WLAN, wireless lan network mark is obtained;
Corresponding scene mode is matched in security level list according to wireless lan network mark;
If being matched to corresponding scene mode according to wireless lan network mark, set mobile terminal to and the scene The associated security level of mode;
If not being matched to corresponding scene mode according to wireless lan network mark, the position of the mobile terminal is obtained Information, and judge according to specified distance or time interval the change in location of mobile terminal, obtain the position letter of mobile terminal Breath;
Corresponding scene mode is matched in security level list according to the positional information;
If being matched to corresponding scene mode according to location information, peace associated with the scene mode is set by mobile terminal Congruent grade;
If being not matched to corresponding scene mode according to wireless lan network mark and location information, movement end is obtained The environmental information at end, the environmental information include the outside noise value of local environment;
Corresponding scene mode is matched in security level list according to environmental information;
If being matched to corresponding scene mode according to the environmental information, set associated with the scene mode for mobile terminal Security level;And
Execute data safety or privacy protection mode that security level described in security level list defines, wherein the data Safety or privacy protection mode include latching mode, the latching mode be suitable for unlocking screen, including exempt from unlock, password unlock, Number and the unlock of pattern password combination, Validation Mode, the Validation Mode are suitable for carrying out safety when executing sensitive operation testing Card, including laissezpasser, password authentification and secondary verifying and desktop management mode, the desktop management mode are adapted for hidden The protection of private data, be included in judge security level for it is low when, the display of hidden parts sensitivity icon or data.
9. method according to claim 8 further includes step:
If the mobile terminal does not access wireless network, the location information of the mobile terminal is obtained, according to the mobile terminal Location information matches corresponding scene mode in security level list.
10. method as claimed in claim 9 further includes step:
If being not matched to corresponding scene mode according to wireless lan network mark, location information and environmental information, Wireless lan network mark, location information and environmental information are recorded in security level list to be customized by the user pair Answer scene mode.
11. method as claimed in claim 10 further includes step:
According in predetermined amount of time to wireless lan network mark and/or location information and/or environmental information statistical data Obtain corresponding scene mode.
12. method as claimed in claim 11 further includes step:
In advance in security level list storage to wireless lan network mark, location information, environmental information, scene mode, The setting of security level.
13. method as claimed in claim 12, wherein
The scene mode includes home mode, office mode, public place mode;And
Associated with the home mode is high safety grade, and what high safety grade defined is the latching mode for exempting from unlock, exemption from examination The Validation Mode of card;
Associated with the office mode is middle security level, and the latching mode that middle security level defines is password unlock, verifying Mode is password authentification;
It is lower security grade with the public place pattern association, the latching mode of lower security tier definition is password combination solution Lock, Validation Mode be it is secondary verifying, desktop management mode be that hidden parts icon is shown.
14. the method as described in any one of claim 9-13, wherein
Location information includes GPS position information and base station position information.
15. a kind of mobile terminal has the safety device such as user data of any of claims 1-7.
CN201510907230.0A 2015-12-10 2015-12-10 The safety device and method of user data of mobile terminal CN105550591B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201510907230.0A CN105550591B (en) 2015-12-10 2015-12-10 The safety device and method of user data of mobile terminal

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201510907230.0A CN105550591B (en) 2015-12-10 2015-12-10 The safety device and method of user data of mobile terminal

Publications (2)

Publication Number Publication Date
CN105550591A CN105550591A (en) 2016-05-04
CN105550591B true CN105550591B (en) 2018-11-23

Family

ID=55829778

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201510907230.0A CN105550591B (en) 2015-12-10 2015-12-10 The safety device and method of user data of mobile terminal

Country Status (1)

Country Link
CN (1) CN105550591B (en)

Families Citing this family (16)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106126010B (en) * 2016-06-16 2019-07-02 捷开通讯(深圳)有限公司 A kind of mobile terminal and its application icon aligning method
CN106127035A (en) * 2016-06-16 2016-11-16 捷开通讯(深圳)有限公司 A kind of mobile terminal and application program method for limiting thereof
CN105873062A (en) * 2016-06-27 2016-08-17 联想(北京)有限公司 Method and device to be networked with wireless communication network, and terminal equipment
CN106211222A (en) * 2016-07-14 2016-12-07 深圳市金立通信设备有限公司 A kind of network access management method and terminal
CN106250773A (en) * 2016-08-15 2016-12-21 捷开通讯(深圳)有限公司 The operational approach of a kind of terminal, system and terminal
CN107820237A (en) * 2016-09-12 2018-03-20 中兴通讯股份有限公司 Data transmission method and device under a kind of WIFI networks
CN107872433A (en) * 2016-09-27 2018-04-03 腾讯科技(深圳)有限公司 A kind of auth method and its equipment
CN106211103A (en) * 2016-09-29 2016-12-07 深圳市金立通信设备有限公司 A kind of wireless network connection prompting method and terminal
CN106656756B (en) * 2016-12-15 2019-09-13 北京容联光辉科技有限公司 The operation method and device of instant message applications
CN106997761A (en) * 2017-04-20 2017-08-01 滁州职业技术学院 The method and mobile terminal of a kind of secret protection
CN107484168A (en) * 2017-07-29 2017-12-15 广东欧珀移动通信有限公司 Bio-identification unlocking method and Related product
CN107404740B (en) * 2017-08-07 2019-04-12 Oppo广东移动通信有限公司 Method for switching network, device and the terminal device of safety
CN107516208A (en) * 2017-08-23 2017-12-26 上海与德科技有限公司 A kind of method of payment and device
CN107820289B (en) * 2017-11-20 2020-09-25 珠海市魅族科技有限公司 WIFI network switching method, device, terminal and medium
CN108551524A (en) * 2018-04-10 2018-09-18 Oppo广东移动通信有限公司 Message informing method and device, terminal between polygonal color in terminal
CN108846272B (en) * 2018-07-13 2020-09-25 厦门美图移动科技有限公司 Application security management method and device and electronic equipment

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103235684A (en) * 2013-03-27 2013-08-07 广东欧珀移动通信有限公司 Method and device for conducting dynamic switching to screen locking mode of mobile terminal
CN104301117A (en) * 2014-10-22 2015-01-21 中国联合网络通信集团有限公司 Identity verification method and device
CN104933351A (en) * 2015-05-26 2015-09-23 小米科技有限责任公司 Information security processing method and information security processing device

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104092821A (en) * 2014-07-01 2014-10-08 惠州Tcl移动通信有限公司 Icon hiding method and system of mobile terminal

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103235684A (en) * 2013-03-27 2013-08-07 广东欧珀移动通信有限公司 Method and device for conducting dynamic switching to screen locking mode of mobile terminal
CN104301117A (en) * 2014-10-22 2015-01-21 中国联合网络通信集团有限公司 Identity verification method and device
CN104933351A (en) * 2015-05-26 2015-09-23 小米科技有限责任公司 Information security processing method and information security processing device

Also Published As

Publication number Publication date
CN105550591A (en) 2016-05-04

Similar Documents

Publication Publication Date Title
US9910973B2 (en) Fingerprint gestures
CN107077552B (en) Bio-identification verifying is distributed between the device in AD-HOC network
US20170289333A1 (en) Device Locator Disable Authentication
US10275585B2 (en) Embedded authentication systems in an electronic device
RU2617683C2 (en) Method and device for processing terminal anomaly and electronic device
US10523670B2 (en) Devices, systems, and methods for security using magnetic field based identification
US9032510B2 (en) Gesture- and expression-based authentication
CN104796857B (en) Location-based security system for portable electronic device
KR102069863B1 (en) Apparatas and method for controlling a input means of payment function in an electronic device
CN103916233B (en) A kind of information ciphering method and device
CA2813172C (en) Multiple-access-level lock screen
KR102013924B1 (en) User proximity control of devices
EP3206150B1 (en) Fingerprint input information processing method, system and mobile terminal
CN104937603B (en) terminal, unlocking method and program
CN104008348B (en) application control method, device and terminal
US8726371B2 (en) Enhanced security for devices enabled for wireless communications
US9367672B2 (en) Method of locking an application on a computing device
CN101960493B (en) Biometric smart card for mobile devices
US10075445B2 (en) Methods and devices for permission management
EP1980049B1 (en) Wireless authentication
US20160378961A1 (en) Security system, apparatus and method using additional code
CN103699825B (en) Display apparatus and method for operating the same
US10515203B2 (en) Method and system for improving security of a mobile terminal
JP4575958B2 (en) Mobile phone policy management
EP2836957B1 (en) Location-based access control for portable electronic device

Legal Events

Date Code Title Description
PB01 Publication
C06 Publication
SE01 Entry into force of request for substantive examination
C10 Entry into substantive examination
GR01 Patent grant
GR01 Patent grant